計算機網絡和信息集成教育部重點實驗室（bet356手机版唯一官网）
bat365 首頁 實驗室概況 研究隊伍 人才培養 科學研究及主要成果 開放與交流 科研資源共享 運行管理
2012年學術報告 學術報告 開放課題設置 合作項目 舉辦學術會議 --- 2012年學術報告 --- Improving Security and Privacy of Android Ad Libraries 時間：2012年3月29日 地點：九龍湖校區計算機樓313室 報告簡介：     Recent years have witnessed incredible growth in the popularity and prevalence of smart phones and their application markets. Mobile applications may have a direct purchasing cost or be free but ad-supported. Unlike in-browser ads, the security and privacy implications of ads in Android applications have not been thoroughly explored. We compare the similarities and differences of in-browser ads and in-app ads. We examine the effect on user privacy of popular Android ad providers by reviewing their use of permissions. Worryingly, several ad libraries take advantage of permissions beyond the required and optional ones listed in their documentation, including dangerous permissions like camera, write calendar, and write contacts. Further, we discover the insecure use of Android's JavaScript extension mechanism in several ad libraries. We show that users can be tracked by a network sniffer across ad providers and by an ad provider across applications. Finally, we discuss several possible solutions to the privacy issues identified above. 報告人簡介：     無     bet356手机版唯一官网計算機網絡和信息集成教育部重點實驗室 版權所有